CO 




(9 
i— i 

LL 



O 
LU 



o 
o 



Q 
LU 

CD 



CO 

g 
o 

U- 



< 
3 



O 
C>4 



o 






I- 




H 


co 




CO 


LU 




LU 


cd 




cd 


Q 




Q 


LU 




LU 


CD 




CD 


< 




$ 


CO 






CO 




CO 


LU 




LU 









I- 
co 

LU 
CD 
Q 
LU 

cd 
< 

CO 
CO 
LU 



CO 
I- 

o 

CL 
LU 

a: 

CO 
Q 



>- 








C 


Q 








1- 


O 
CO 




LU 




UJ 


LU 






• • • 




CD 




X 




X 






















CO 
LU 




! 




I 













CO 
CD 

o 

—I 

< 

Q 

GL 
)— 

CO 
LU 







CO 




LU 




CD 




a 




LU 




SSAG 


URE) 


ME! 


NAT 


RALL 


LSIG 


LU 




> 




O 


CD 


en 


Q 






DL 




>- 




a: 




o 




z 




LU 








200 

To register an email by an originator 
(e.g "John Smith at email address 
jsmith@adomain.com) 



201 

originator creates an email message using any 
Internet Mail User Agent (MUA) 
(Note the message may have multiple 
destinations and attachments) 



FIG. 2A 
Preprocessing 



1 


f 


202 

The Registration System (RS), acting as the 
senders MTA receives a copy of email 




r 


2( 

RS will create a copy c 
to be stored until the i 
com 


)3 

>f the original message 
-egistration process is 
plete 



204 

RS creates a database record which 
Included: 

Th time at which the message was 
received. 

Th names and sizes of the attachments of 
the message 

The name and address of each destination 
of the message. 

The time at which the message was 
delivered to the destination's MTA. 
The delivery status of each destination 



205 

RS sets the Delivery Status of each destination to 
"UNSENT 



206 

RS generates and stores Message Digest 
(hash) of the body of the message. 



"207 

RS generates and stores a hash for each file 
attached to the message. 



208 



RS creates a second copy to modify the original message 



209 

The original subject line of the message is amended to indicate that the copy 

is registered 
(e.g. by pre-pending "(R)egistered") 



1 


f 


210 

A notice that the message is registered by the RS, together with links to the 
RS's www site are appended to the body of the message. 




r 



211 

Email headers are added requesting a Mail User Agent (MUA) reading 
notification in a variety of header formats recognized by various MUAs. 
The request for notification directs the notification to an destination whose 
name is the address of the originator of the message and whose address is a 

rpost.com account set up for this purpose. 
The notification will use the address of the original sender in the name field of 

the MUA request, 
(e.g. dispositions-notification-to: jsmith@adomin.com 
<readreceipt@rpost.com>) 



C 



Z12 

Transmit the message 
(GOTO FIG B) 



~22tT 



For each message destination the 
system wiil: 



5) 



1 

2: 

Change the Message 
FROM: John smith < RC 
where xxxxxx = a tag uniqu 
where y = a tag identifying th 


r 

>1 

header to show it as 
PTxxxxxy@rpost.com> 
ely identifying this message 
is destination of this message 




f 


2: 

Perform an DNS MX lookup 
destinatic 


12 

to identify the MTA(s) for the 
n domain 



FIG. 2B 
Transmission 



223 

Attempts to open a telenet connection to the 
destination's MTA. 



228 

Retry using other MTA's for 
the destination if available. 




237 
Record 
destination's 
delivery status as 
"DELIVERED" 



239 

f Attempt to deliver ^ 
to another 
destination 



c 



ZK5 

System receives MTA 



FIG. 2C 
Post-Processing 

Processing MTA Notifications 
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r 


241 

System scans incoming mail to 
rpost.com for addresses containing 
"rctp" 




r 


242 

System identifies messages 
addressed to 
"rcptxxxxxy@rpost.com" 
as delivery notifications for destination 
y of message xxxxxxx. 




f 


243 

System scans the subject and body of 
the message for strings indicating 
delivery failure, relay or success 




f 




YES- 



245 

Change delivery status 
of destination y of 
message xxxxxx to 
"DELIVERED-TO- 
MAILBO X" 



YES- 



247 

Change delivery status 
of destination y of 
message xxxxxx to 
"FAILURE" 



YES- 



249 

Change delivery status 
of destination y of 
message xxxxxx to 
"RELAYED" 



-NO- 



-250 



Save copies of 
MTA Notice 

and 
attachments 




251 
Processing 
Complete 



250 

From time to time the system 
will review the status of ail 
pending messages 



251 

For each message 
the system will 



FIG. 2D 
Post-Processing 

Message Management 



402 
Examine the 
destination status 
(DS) for each 
destination 




256 
Get Next 
Destination 



15 

(Note: DS= "RELAYED", 

"UN DELIVERABLE", 
DELIVERED-TO-MAILBOX" or 
"FAILURE") 



YES 



NO 
± 

260 

Delivery is complete 
Generate Receipt 
(Goto fig 2E) 



t 



START HERE FROM FIGURE 
2D 



Y 

271 

A message identifier for administrative purposes. 
This identifier may be or may include reference to the originator's id and/or the value of the Internet Message-ID of the originator's 

message as received by the system. 

272 

The quoted body of the original message together with the email addresses of its intended recipients. 



, 4 

273 

A table for each recipient listing:: 

The Delivery status of the message for that destination based upon the Systems recorded delivery status. 

The time at which the recipient's MTA received the message and/or the time at which the system received a DSN from the 
recipient's MTA. 

j 

274 

A list of the original attachments of the email together with their separate hash numbers. 




fig- 2E 

The sytem generates an 



email Receipt which 
Includes: 



Post-Processing 

Generate a Delivery Receipt 



— — — r 

Transcripts or abstractions of the transcripts of alt of the SM 
destir 


^ 

TP dialogs generated in the delivery of the message to each 
iation, ■. 




r 


276 

Quotations from the bodies and the attachments of all received DSNs including whatever details of delivery or disposition of the 

message that they might reveal 



J 

277 

The system will attach to the receipt copies of all of the attachments of the original message 



278 

The system will attach received DSN messages and their attachments to the receipt. 

i 

279 

Having generated the text of the receipt so far, the system then generates an encrypted hash of the body of the receipt 



280 

The encrypted hash is appended to the body of the message as a digital signature 

281 

The receipt, now being complete, is sent by email to the originator with the advice that it be kept for the 

originator's records. 



C 



252 

The system may now delete all copies of the original message, attachment and 
DSNs. 



FIG- 2F 
Post-Processing 

Generate a Reading Notice 



The system receives MUA Notifications at an e-mail address 
used for this purpose, 
(e.g. readreceipt@rpost.com) 



286 

Extracts the address of the sender of the original message from 
the address of the MUA Notice where it is found in the name 
field of the message. 
(E.g. TO:jsmith@adomain.com <readreceipt@rpost.com> 



287 

Creates a receipt which includes: 

the subject of the MUA as its subject ; 
a heading e.g. " RPost Reading Receipt"; 
the body of the MUA Notice quoted in the body of the 
Receipt. 

a time/date stamp 



1 


r 


288 

Attach to the receipt any files that may accompany the MUA's 
receipt. 




r 


289 

Generate a hash for any files attached to the receipt and record 
this hash in the body of the receipt. 




r 



290 

Generate a hash for the body of the receipt and its attachments, 
encrypt this hash, and append the result to the message as a 
"document digital fingerprint". 



291 

Send the resulting receipt to the originator of the message. 
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700 

fUsers submit receipts for validation by forwarding^ 
^ them as emails to a specific rpost.com address. 
E.g. authentica@rpost.com 



FIG. 7 
Validating a receipt 



701 

When a receipt is received the operators of the 
system shall: 



702 

Detach and decrypt the document digital 
signature appended to the receipt. 



703 

Generate a hash of the balance of the document 




705 

Generate a report indicating that the operator of RPost cannot 
authenticate the receipt as an accurate record of the delivery or 
contents of the message described in the receipt. 



706 

Generate a report indicating that the operator of RPost can 
authenticate the receipt as an accurate record of the delivery of the 
original message to its destination: 
that the body of the message was as appears in the receipt. 



301 

For each such file: 



708 

Generate a hash of the 
attached file 



70g 

Compare the newly 
generated hash to the hash 

value quoted in the 
document. 



YES 



710 

Generate a report indicating that the operator of RPost can 
authenticate the receipt as an accurate record of the delivery of 
the original message to its destination: 
that the body of the message was as appears in the receipt, 
that each delivered attachment was identical to the copies 
appended to the receipt. 




712 

Generate a report indicating that RPost cannot 
authenticate the submitted receipt because the 
attached file appears to have been altered since 
the time the message was delivered. 



713 

Append a copy of the 
receipt to the report 



r 7u \ 

E-mail the report to the user J 
Vwho submitted the receipt/ 
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FIG. 9 

Validating Received Mail 



c 



900 

To register an email for a recipient. 



901 

Receive email for recipient acting as an 
SMTP, POP or IMAP server. 



902 

Generate a hash/digital fingerprint for 
the content of the message and its 
attachments. 



903 

Encrypt the hash(es). 



904 

Append the encrypted hash(es) to the 
body of the message. 



905 

Make the message available for 
reading/download by the recipient's 
MUA. 



FIG. 10 
Registering Inbound Mail 



1000 ^ 
Recipient submits a copy of the 
receive mail to the operators of the 
\. system who: 



1 


r 


1001 

Decrypt the hash attached to the 
body of the message. 




r 



1002 

Generate a hash of the body of the 
message and attachments. 



1003 

Compare the document hash(es) 
with the decrypted hash(es) 



^too^ 

Do the 
hash(es) 



1005 

The operators can warrant that the 
email is as originally received 



1006 

The operators can warrant that the e-mail 
las been altered since originally received/ 
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FIG. 13 



Sender transmits message 
to mail server 



Mail Transport 
Agent 



Sender 



1 /50 2 



Mail server reformats 
message to HTML format 



J30 3 



Server assigns message a 
unique identification 
number 



T J3ft 4 



Server assigns each 
intended recipient a unique 
ID 



Server includes an HTML 

tag which includes a 
message and recipient ID 



Sender is sent notification of 
the opening of the message. 



SMTP 



/internet/ 



SMTP 



IBO 6 



Message is opened at 
recipient's client. 








r J^O 9 




Recipients Client performs 






HTTP callout. 








-HTTP- 




J?14 



Message ID is matched with 
message and sender. 


i 


i 


Server extracts message 
and recipient ID. 


i 


i 


t 

Server extracts caller IP 



J 310 



Server receives HTTP 
resource callout. 



HTTP Server 



Recipient 



